CVE-2023-33228

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Nov 1, 2023

Updated: Nov 9, 2023

CWE ID 311

Summary

CVE-2023-33228 refers to a vulnerability in the SolarWinds Network Configuration Manager. This issue enabled users with administrative access to the SolarWinds Web Console to unintentionally expose sensitive information. This vulnerability could potentially put organizations at risk if the sensitive information fell into the wrong hands. The precise nature of the sensitive information that could be accessed was not disclosed, but it is known to be data that should have remained concealed. This vulnerability underscores the importance of secure configuration management and access control in network environments.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Vendors

SolarWinds Inc.

Advisories, Assessments, and Mitigations

Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future

Note: This is just a basic overview providing quick insights into CVE-2023-33228 information. Gain full access to comprehensive CVE data, third party vulnerabilities, compromised credentials and more with Recorded Future

Gain complete coverage of your cyber, third party, and physical attack surface
Proactively mitigate threats before they turn into costly attacks
Make fast, effective, data-driven decisions

Book your demo

Sign in

Back to Vulnerability Database